Overview

overview

4

Static

static

4

15ce1e97b8...02.zip

windows7-x64

1

15ce1e97b8...02.zip

windows10-2004-x64

1

Windows-11...nt.pdf

windows7-x64

1

Windows-11...nt.pdf

windows10-2004-x64

1

Windows-11...2.xlsx

windows7-x64

1

Windows-11...2.xlsx

windows10-2004-x64

1

Windows-11...s.xlsx

windows7-x64

1

Windows-11...s.xlsx

windows10-2004-x64

1

Windows-11...ter.js

windows7-x64

1

Windows-11...ter.js

windows10-2004-x64

1

Windows-11...ser.js

windows7-x64

1

Windows-11...ser.js

windows10-2004-x64

1

Windows-11...ker.js

windows7-x64

1

Windows-11...ker.js

windows10-2004-x64

1

Windows-11...ter.js

windows7-x64

1

Windows-11...ter.js

windows10-2004-x64

1

Windows-11...st.xml

windows7-x64

1

Windows-11...st.xml

windows10-2004-x64

1

Windows-11...up.xml

windows7-x64

1

Windows-11...up.xml

windows10-2004-x64

1

Windows-11...t.cmtx

windows7-x64

3

Windows-11...t.cmtx

windows10-2004-x64

3

Windows-11...ch.csv

windows7-x64

1

Windows-11...ch.csv

windows10-2004-x64

1

Windows-11...ch.inf

windows7-x64

1

Windows-11...ch.inf

windows10-2004-x64

1

Windows-11...ry.pol

windows7-x64

3

Windows-11...ry.pol

windows10-2004-x64

3

Windows-11...fo.xml

windows7-x64

1

Windows-11...fo.xml

windows10-2004-x64

1

Windows-11...rt.xml

windows7-x64

1

Windows-11...rt.xml

windows10-2004-x64

1

Analysis

  • max time kernel
    301s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22-11-2023 11:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Windows-11-v22H2-Security-Baseline/Documentation/Announcement.pdf

  • Size

    375KB

  • MD5

    a349bc490ab54bb6e4171571fd4a047a

  • SHA1

    4a36faed6af94b763e119a1888f438698adab566

  • SHA256

    cddfbf6ed2ae0b85790dcfa1781a488263c8184007e9b15a2e80462e5212982e

  • SHA512

    b902e2957dd2439e46895dfd0bee6d763466d0b426d53610423a50f2f50f365465d716531fb7337c08d124b9919538ab555e50af852c0f0b743e025858017962

  • SSDEEP

    6144:BRDWuczEPgZfIzFOnLaADjZAawyvXd53KS/2GC6DdEaBe1awx1fk7Fk1ry:BRDWuo2gh4FMLvD6awyfd5nX7BEaBeNg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Windows-11-v22H2-Security-Baseline\Documentation\Announcement.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1668

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    932d14a94297c0a7062de13651b42c5c

    SHA1

    e8c56218b93a352826e3f1f5d96105fca5a2f703

    SHA256

    8bf7befa7a22c7853fb0717fe07c127f1af341933eb73bebeb7b1c243895c2fb

    SHA512

    3639705e71f1a8e9679850db99062e7604a1141e4fc11fd62f11e591319d494f938d1eb20f3ce4252094dd870e1fb250db546dc8ba4ef8317999c9dc38f1ad45

    Download Submit